git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Eric Dumazet <edumazet@google.com>
	Fri, 5 Sep 2025 16:58:07 +0000 (16:58 +0000)
committer	Jakub Kicinski <kuba@kernel.org>
	Tue, 9 Sep 2025 01:06:20 +0000 (18:06 -0700)
commit	2fab94bcf313480336b0a41eb45a24ffd5087490
tree	1345e0667266ed825ca43a9cfd21b7586b2d7fef	tree \| snapshot
parent	ceac1fb2290d230eb83aff3761058c559440de13	commit \| diff

ipv6: snmp: do not track per idev ICMP6_MIB_RATELIMITHOST

Blamed commit added a critical false sharing on a single
atomic_long_t under DOS, like receiving UDP packets
to closed ports.

Per netns ICMP6_MIB_RATELIMITHOST tracking uses per-cpu
storage and is enough, we do not need per-device and slow tracking.

Fixes: d0941130c9351 ("icmp: Add counters for rate limits")
Signed-off-by: Eric Dumazet <edumazet@google.com>
Cc: Jamie Bainbridge <jamie.bainbridge@gmail.com>
Cc: Abhishek Rawal <rawal.abhishek92@gmail.com>
Link: https://patch.msgid.link/20250905165813.1470708-4-edumazet@google.com
Signed-off-by: Jakub Kicinski <kuba@kernel.org>

net/ipv6/icmp.c		diff \| blob \| blame \| history
net/ipv6/proc.c		diff \| blob \| blame \| history